Newsletter Archives

• MS-DEFCON 3: Blocking a potential wormable event

  Posted on August 16, 2024 at 21:22 CDT by Susan Bradley • Comment in the Forums

  

  ISSUE 21.33.1 • 2024-08-16

  

  By Susan Bradley

  It’s been a long time since we’ve had a Microsoft worm event.

  Last week’s patches contained a fix for the Windows TCP/IP Remote Code Execution Vulnerability identified as CVE-2024-38063. This one affects all supported Windows versions and extends back to Windows 7 and Windows 8, including older servers.

  This CVE has a very high danger rating. Because of that, I am lowering the MS-DEFCON level earlier than I normally would, setting it to 3. That sounds backward, but this advisory is conditional, based upon the type of user you are and how you decide to deal with the update.

  Although the danger is real, I believe the risk is somewhat less. In this alert, I’ll explain why.

  Anyone can read the full MS-DEFCON Alert (21.33.1, 2024-08-16).

  AskWoody Plus Alert, MS-DEFCON Alerts, CVE-2024-38063, IPv6, MS-DEFCON, MS-DEFCON 3, Patch Lady Posts, Windows, Windows Server, wormable

• MS-DEFCON 3: Secure Boot triggers recovery keys

  Posted on July 31, 2024 at 02:45 CDT by Susan Bradley • Comment in the Forums

  

  ISSUE 21.31.1 • 2024-07-31

  

  By Susan Bradley

  It’s time to check whether your boot drive is encrypted.

  As I predicted, Microsoft’s July 2024 security update may trigger a request for recovery keys among those who enabled BitLocker or drive encryption. That’s because the update included a change to Secure Boot.

  This is problematic enough that I’m lowering the MS-DEFCON level to just 3, rather than the more common level 4 I usually suggest at the end of the month. I think you should install updates, but don’t install and then review. Instead, understand this problem ahead of time, prepare as needed, and then update.

  Anyone can read the full MS-DEFCON Alert (21.31.1, 2024-07-31.

  AskWoody Plus Alert, MS-DEFCON Alerts, Binarly, BitLocker, Drive Encryption, KB5040430, KB5040437, KB5040525, KB5040527, MS-DEFCON, MS-DEFCON 3, Patch Lady Posts, PKfail, Secure Boot

• MS-DEFCON 3: Consumers get a break

  Posted on March 27, 2024 at 16:36 CDT by Susan Bradley • Comment in the Forums

  

  ISSUE 21.13.1 • 2024-03-27

  

  By Susan Bradley

  Business patchers take heed.

  Usually, monthly updates have the same impact on both business and consumer PCs. This month, applying patches to consumer machines is generally safe, which would have earned a MS-DEFCON level of 4. But business machines are another matter; I’ve lowered the level to 3.

  For the most part, I think the business issues are resolved as of the publication of this alert. But we’re experiencing one of those media frenzies which is vastly overstating the occurrence of blue screens of death (BSOD).

  Anyone can read the full MS-DEFCON Alert (21.13.1, 2024-03-27).

  AskWoody Plus Alert, MS-DEFCON Alerts, KB5035853, KB5035855, KB5035857, KB5035885, KB5037422, KB5037423, KB5037426, MS-DEFCON, MS-DEFCON 3, Patch Lady Posts

• MS-DEFCON 3: A bumpy start to 2024

  Posted on January 30, 2024 at 02:45 CST by Susan Bradley • Comment in the Forums

  

  ISSUE 21.05.1 • 2024-01-30

  

  By Susan Bradley

  The partition-sizing problem that emerged earlier this month is not yet fixed.

  Fortunately, our deep examination of this bug has revealed nothing of a dangerous nature. Therefore, I am lowering the MS-DEFCON level to 3. It’s now time to carefully install the January updates.

  We continue to monitor the problem, described in KB5034441 for Windows 10 22H2 and in KB5034440 for Windows 11. Some, but not all, Windows 10 PCs are affected. I have urged you to check your partitions for issues with installing this update. We have written extensively about the problems, and the forums have been very active (see the From the Forums article in yesterday’s newsletter).

  Anyone can read the full MS-DEFCON Alert (21.05.1, 2024-01-30).

  AskWoody Plus Alert, MS-DEFCON Alerts, InControl, KB5034234, KB5034440, KB5034441, MS-DEFCON, MS-DEFCON 3, Patch Lady Posts, Recovery Partition, WinRE, WUShowHide

• MS-DEFCON 3: A slightly bumpy November

  Posted on November 28, 2023 at 02:45 CST by Susan Bradley • Comment in the Forums

  

  ISSUE 20.48.1 • 2023-11-28

  

  By Susan Bradley

  For most Windows 10 and 11 users, including me, there have been no side effects as a result of November’s updates.

  Nonetheless, there appear to be a few potholes in the road. That’s enough to make me cautious — I’m lowering the MS-DEFCON level to only 3.

  One thing I did notice was updates taking more time to complete than usual — not a good sign. At the very least, it’s a good reason to take a look at the update history in Settings.

  Anyone can read the full MS-DEFCON Alert (20.48.1, 2023-11-28).

  AskWoody Plus Alert, MS-DEFCON Alerts, Dev Drive, Dev Home App, InControl, KB5032189, KB5032190, MS-DEFCON, MS-DEFCON 3, OpenAI, Patch Lady Posts, speed test, Uninstall updates, Windows Copilot

• MS-DEFCON 3: Should you patch? It depends.

  Posted on October 24, 2023 at 02:45 CDT by Susan Bradley • Comment in the Forums

  

  ISSUE 20.43.1 • 2023-10-24

  

  By Susan Bradley

  The October updates have been either mildly annoying or downright hostile.

  Stop the presses: I’m urging caution by lowering the MS-DEFCON level to 3.

  A big reason for this is that many folks are experiencing multiple reboots after patches are applied. We normally expect one reboot — one reboot only — when we patch. In theory, all updates should download the parts they need, install the updates, and then reboot. Only when all are installed and the system is ready should it reboot.

  But not this month. Some of us received three updates, each of which triggered a reboot.

  Anyone can read the full MS-DEFCON Alert (20.43.1, 2023-10-24).

  AskWoody Plus Alert, MS-DEFCON Alerts, KB5001716, KB5031356, KB5031364, MS-DEFCON, MS-DEFCON 3, Patch Lady Posts

• MS-DEFCON 3: Patch carefully

  Posted on August 22, 2023 at 02:45 CDT by Susan Bradley • Comment in the Forums

  

  ISSUE 20.34.1 • 2023-08-22

  

  By Susan Bradley

  August can be a weird month where patching is concerned.

  I’m lowering the MS-DEFCON level, but with caution. I usually hope to give time near the end of the month for patches to be applied, by lowering the level to 4 and sometimes 5. This time, I’m wishy-washy. Caution is the order of the day, so I’m lowering the level to just 3.

  In my house, August represents a tradition — things occur that make me think technology wants to take a vacation, just like the rest of us.

  Anyone can read the full MS-DEFCON Alert (20.34.1, 2023-08-22).

  AskWoody Plus Alert, MS-DEFCON Alerts, CVE-2022-40982, CVE-2023-32019, Exchange Server, MS-DEFCON, MS-DEFCON 3, Patch Lady Posts, USB Security Key, Windows Update

• MS-DEFCON 3: Windows 10 22H2 may leave you blue

  Posted on December 27, 2022 at 02:45 CST by Susan Bradley • Comment in the Forums

  

  ISSUE 19.52.1 • 2022-12-27

  

  By Susan Bradley

  I have a favorite Christmas song titled “We need a little Christmas,” from the Broadway musical “Mame.”

  The uplifting tone of the song expresses the pleasure and happiness we experience during the holiday. We don’t usually associate “blue” feelings with the season (except Elvis).

  Windows 10 could use a little of that holiday spirit. Unfortunately, two different patches for 22H2 appear to be throwing off blue screens of death for some — but not all — users. As much as I’d like to lower the MS-DEFCON level to the more serene level 4, so you can enjoy the holiday while applying updates, out of caution I am dropping it only one notch.

  Anyone can read the full MS-DEFCON Alert (19.52.1, 2022-12-27).

  AskWoody Plus Alert, MS-DEFCON Alerts, BSOD, MS-DEFCON, MS-DEFCON 3, Newsletters, Patch Lady Posts, Windows 10
• « Older Entries